B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2026-12240 - Export User Data <= 2.2.6 - Authenticated (Subscriber+) PHP Object Injection to Arbitrary File Deletion via display_name Field

CVE ID :CVE-2026-12240 Published : June 30, 2026, 6:52 a.m. | 2 hours, 19 minutes ago Description :The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the unserialize function in all versions up to, and including,...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-39938

2026-06-30 Mittel

Attackers actively exploit the Oracle E-Business Suite flaw CVE-2026-46817

2026-06-30 Kritisch

USN-8482-1: Roundcube Webmail vulnerability

2026-06-30 Gering

CVE-2026-39955

2026-06-30 Mittel

Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth

2026-06-30 Kritisch

CVE-2026-12578 - DTMSoft - Deserialization of Untrusted Data Vulnerability

2026-06-30 Mittel